Okta

How to Configure SAML 2.0 for DSI

  1. Send an email to DSI requesting that they enable SAML 2.0 for your account.

  2. Provide the following information:

    • x.509 Certificate: Copy and paste the following (in PEM Text format):

      Sign into the Okta Admin Dashboard to generate this variable.

    • Login URL/SignOn URL: Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

    • IDP Issuer/Entity ID: Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

  3. Ask DSI to provide you with the following:

    • A value for Default Relay State

    • An Employee number.

  4. In Okta, select the Sign On tab for the DSI app, then click Edit:

    • Enter the Default Relay State value provided by DSI.

    • Click Save.

    “dsi1.png"

  5. Still in Okta, select the People tab, then click on each Username:

    “dsi2.png"

  6. On your User Dashboard select the Profile tab, then click Edit:

    “dsi3.png"

    • Enter the Employee number provided by DSI.

    • Click Save.

    “dsi4.png"

  7. Done!

    Notes:

    IdP-initiated flows are supported.

    SP-initiated flows and Just in Time (JIT) provisioning are not supported.